CVE-2023-42326 — Command Injection in Pfsense

CWE-77 — Command Injection6 documents5 sources

Severity

8.8HIGHNVD

EPSS

83.7%

top 0.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Netgate Pfsense Netgate Pfsense Plus

Timeline

PublishedNov 14

Latest updateDec 12

Description

An issue in Netgate pfSense v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the interfaces_gif_edit.php and interfaces_gre_edit.php components.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDnetgate/pfsense2.7.0

▶NVDnetgate/pfsense_plus23.05.1

🔴Vulnerability Details

CVEList

CVE-2023-42326: An issue in Netgate pfSense v↗2023-11-14

▶

GHSA

GHSA-mp2m-2429-rgfv: An issue in Netgate pfSense v↗2023-11-14

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS pfSense CE 2.7.0 gfif Parameter Remote Code Execution Attempt (CVE-2023-42326) M1↗2023-12-12

▶

Suricata

ET WEB_SPECIFIC_APPS pfSense CE 2.7.0 gfif Parameter Remote Code Execution Attempt (CVE-2023-42326) M2↗2023-12-12

▶

🕵️Threat Intelligence

Bleepingcomputer

Over 1,450 pfSense servers exposed to RCE attacks via bug chain↗2023-12-12

▶